Playing Attack and Defense with Trusted Storage

Javier Gonzalez; Philippe Bonnet; Luc Bouganim

Playing Attack and Defense with Trusted Storage

Javier Gonzalez, Philippe Bonnet, Luc Bouganim

The French National Institute for Computer Science (INRIA)

Research output: Journal Article or Conference Article in Journal › Conference article › Research › peer-review

Abstract

It is often convenient to assume in a data management platform that one or several computing devices are trusted, specially when the goal is to provide privacy guarantees over personal data. But what does it take for a computing device to be trusted? More specifically, how can a personal device provide trusted storage? This is the question we tackle in this demonstration. We describe how secure devices, equipped with a trusted execution environment, differ from general purpose devices. We illustrate with our demonstration scenario, that it is much more difficult to attack a storage service running on a secure device, than to attack the same service running on a general purpose device.

Original language	English
Journal	ITUs skriftserie
Number of pages	8
ISSN	1500-7707
Publication status	Published - 2014

Keywords

Trusted Computing
Privacy Guarantees
Data Management
Secure Devices
Trusted Execution Environment

Access to Document

sigmod_demo_techreportSubmitted manuscript, 616 KB

Cite this

@inproceedings{ab998603f2e24e0f80ea630373d4f022,

title = "Playing Attack and Defense with Trusted Storage",

abstract = "It is often convenient to assume in a data management platform that one or several computing devices are trusted, specially when the goal is to provide privacy guarantees over personal data. But what does it take for a computing device to be trusted? More specifically, how can a personal device provide trusted storage? This is the question we tackle in this demonstration. We describe how secure devices, equipped with a trusted execution environment, differ from general purpose devices. We illustrate with our demonstration scenario, that it is much more difficult to attack a storage service running on a secure device, than to attack the same service running on a general purpose device.",

keywords = "Trusted Computing, Privacy Guarantees, Data Management, Secure Devices, Trusted Execution Environment, Trusted Computing, Privacy Guarantees, Data Management, Secure Devices, Trusted Execution Environment",

author = "Javier Gonzalez and Philippe Bonnet and Luc Bouganim",

year = "2014",

language = "English",

journal = "ITUs skriftserie",

issn = "1500-7707",

publisher = "Universitetet i Oslo",

}

TY - GEN

T1 - Playing Attack and Defense with Trusted Storage

AU - Gonzalez, Javier

AU - Bonnet, Philippe

AU - Bouganim, Luc

PY - 2014

Y1 - 2014

N2 - It is often convenient to assume in a data management platform that one or several computing devices are trusted, specially when the goal is to provide privacy guarantees over personal data. But what does it take for a computing device to be trusted? More specifically, how can a personal device provide trusted storage? This is the question we tackle in this demonstration. We describe how secure devices, equipped with a trusted execution environment, differ from general purpose devices. We illustrate with our demonstration scenario, that it is much more difficult to attack a storage service running on a secure device, than to attack the same service running on a general purpose device.

AB - It is often convenient to assume in a data management platform that one or several computing devices are trusted, specially when the goal is to provide privacy guarantees over personal data. But what does it take for a computing device to be trusted? More specifically, how can a personal device provide trusted storage? This is the question we tackle in this demonstration. We describe how secure devices, equipped with a trusted execution environment, differ from general purpose devices. We illustrate with our demonstration scenario, that it is much more difficult to attack a storage service running on a secure device, than to attack the same service running on a general purpose device.

KW - Trusted Computing

KW - Privacy Guarantees

KW - Data Management

KW - Secure Devices

KW - Trusted Execution Environment

KW - Trusted Computing

KW - Privacy Guarantees

KW - Data Management

KW - Secure Devices

KW - Trusted Execution Environment

M3 - Conference article

SN - 1500-7707

JO - ITUs skriftserie

JF - ITUs skriftserie

ER -

Playing Attack and Defense with Trusted Storage

Abstract

Keywords

Access to Document

Fingerprint

Cite this